$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa File: AS140002.roa (raw, json) Hash identifier: UkTXMdpGuoG4htiyKjxSXkGWbgKdAVrf5i3Gh64CutM= Subject key identifier: A3:09:EB:2E:C4:76:7C:1D:66:FB:0B:67:10:37:FE:25:DF:46:B9:19 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 10FAC86831278E5B666D7A897091D69739DB3FCF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa Signing time: Tue 02 Jul 2024 21:00:00 +0000 ROA not before: Tue 02 Jul 2024 20:55:00 +0000 ROA not after: Tue 01 Jul 2025 21:00:00 +0000 asID: 140002 IP address blocks: 103.148.78.0/24 maxlen: 24 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:fa:c8:68:31:27:8e:5b:66:6d:7a:89:70:91:d6:97:39:db:3f:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 20:55:00 2024 GMT Not After : Jul 1 21:00:00 2025 GMT Subject: CN=A309EB2EC4767C1D66FB0B671037FE25DF46B919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:22:c7:0e:e1:46:d3:9a:ed:1f:e9:ff:17: de:ce:b0:d1:ad:ea:57:24:47:a0:52:6b:2f:2c:f7: f2:b6:01:90:6e:03:e1:37:99:16:8e:9d:13:40:e4: 67:76:ab:aa:e8:44:29:3a:3d:31:4e:6d:25:08:8d: ea:21:cf:1b:e8:00:66:f6:25:7c:ea:b0:ea:91:10: a0:a4:c2:2a:4b:77:c6:fa:ed:45:93:ca:64:c8:74: 06:d8:3f:80:dc:e3:91:42:c1:6d:8d:23:58:9a:7f: 88:2d:e4:8a:59:40:b0:82:d6:af:cc:b3:9f:0f:9c: 08:e7:da:a7:1d:ce:aa:51:95:7f:31:66:21:6c:bf: 27:aa:3c:8c:59:c5:78:55:ad:0e:b6:7b:cb:54:90: 87:fa:ed:7f:d0:6e:ed:ca:82:5c:ff:ae:91:ef:35: 26:1c:dd:54:1c:a5:97:39:04:9e:64:9c:fa:3d:fe: b3:dd:ae:61:24:5b:75:3f:af:6a:17:b9:d0:a7:ec: 65:aa:cb:3e:97:30:5e:7a:f8:44:ab:8a:2a:bf:b3: b9:f9:04:bb:35:98:45:90:58:d8:8a:e8:9a:5c:ce: 42:a4:13:4b:13:51:b6:4b:93:da:07:90:a1:49:39: b6:2d:57:17:13:b4:75:cf:78:d0:88:16:a6:f0:8a: 02:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:09:EB:2E:C4:76:7C:1D:66:FB:0B:67:10:37:FE:25:DF:46:B9:19 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.78.0/24 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 50:e4:6a:80:44:84:f1:01:3f:a7:fe:be:ba:69:47:36:89:2f: 61:11:88:e6:63:88:a5:77:3e:b7:91:d3:a2:4c:5d:0f:bb:8b: 70:52:93:82:45:e6:66:e6:e7:53:e9:b4:c2:fa:1e:0e:a6:5c: 4b:c9:78:62:1e:cb:64:0c:2a:27:25:72:62:9d:96:1e:5c:1a: 87:40:d6:12:63:f5:23:39:3a:f0:76:2c:ee:f4:6d:c7:4c:00: e8:42:64:02:ee:f4:05:de:d5:1d:0f:76:c7:01:8f:ad:e9:95: ec:af:28:13:c4:e0:03:93:3e:6c:7e:1f:fa:dc:ae:da:6a:ff: 26:57:31:3f:a2:a8:2e:05:6f:f1:60:62:48:82:d0:2b:22:77: 77:29:6b:cc:48:2c:df:8a:b3:f9:e9:30:58:9e:47:ba:14:b7: a1:46:9a:3d:3e:b7:aa:f1:5f:ad:00:8e:39:52:fa:eb:fb:fe: 30:3b:38:92:ff:fc:9b:65:35:8c:d4:aa:c4:75:5c:52:3d:ae: 58:6d:4d:dc:b7:15:a9:30:17:a1:e7:04:88:dc:87:66:38:bd: de:7e:2c:82:32:6d:85:70:a9:6f:5c:5a:8c:f9:40:bd:1b:44: ac:3d:d7:45:7c:e4:ac:3f:cc:8d:cd:28:8d:24:65:15:ad:80: 06:6e:b2:34 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUEPrIaDEnjltmbXqJcJHWlznbP88wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjIwNTUwMFoX DTI1MDcwMTIxMDAwMFowMzExMC8GA1UEAxMoQTMwOUVCMkVDNDc2N0MxRDY2RkIw QjY3MTAzN0ZFMjVERjQ2QjkxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1RIscO4UbTmu0f6f8X3s6w0a3qVyRHoFJrLyz38rYBkG4D4TeZFo6dE0Dk Z3arquhEKTo9MU5tJQiN6iHPG+gAZvYlfOqw6pEQoKTCKkt3xvrtRZPKZMh0Btg/ gNzjkULBbY0jWJp/iC3killAsILWr8yznw+cCOfapx3OqlGVfzFmIWy/J6o8jFnF eFWtDrZ7y1SQh/rtf9Bu7cqCXP+uke81JhzdVByllzkEnmSc+j3+s92uYSRbdT+v ahe50KfsZarLPpcwXnr4RKuKKr+zufkEuzWYRZBY2IromlzOQqQTSxNRtkuT2geQ oUk5ti1XFxO0dc940IgWpvCKAjUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSjCesu xHZ8HWb7C2cQN/4l30a5GTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGeUTgMEAMt3DTANBgkqhkiG9w0BAQsFAAOCAQEAUORqgESE8QE/ p/6+umlHNokvYRGI5mOIpXc+t5HTokxdD7uLcFKTgkXmZubnU+m0wvoeDqZcS8l4 Yh7LZAwqJyVyYp2WHlwah0DWEmP1Izk68HYs7vRtx0wA6EJkAu70Bd7VHQ92xwGP remV7K8oE8TgA5M+bH4f+tyu2mr/JlcxP6KoLgVv8WBiSILQKyJ3dylrzEgs34qz +ekwWJ5HuhS3oUaaPT63qvFfrQCOOVL66/v+MDs4kv/8m2U1jNSqxHVcUj2uWG1N 3LcVqTAXoecEiNyHZji93n4sgjJthXCpb1xajPlAvRtErD3XRXzkrD/Mjc0ojSRl Fa2ABm6yNA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org